reset logic improved

Author: avipars

hints/routes.py

@@ -46,7 +46,7 @@ def flags():
                 flash("You already submitted this flag.", "info")
             elif submitted_flag == stages[current_stage]["flag"]:
                 flash(f"Correct flag for Stage {current_stage}!", "success")
-                if submitted_flag not in submitted_flags:
+                if submitted_flag not in submitted_flags: # no duplicates
                     submitted_flags.append(submitted_flag)
                     session["submitted_flags"] = submitted_flags
 
@@ -70,7 +70,7 @@ def flags():
                     if submitted_flag == stage_data["flag"]: # out of order
                         flash(
                             f"That's the flag for stage {stage}, but in the wrong order, try to go back and find the right one", "info")
-                        # current_stage = stage
+                        # current_stage = stage , i decided to not let them proceed to the next stage, but to stay in current one
                         hint_index = 0
                         found = True
 
@@ -152,10 +152,10 @@ def index():
     return render_template("index.html", summary=brief, title="CTFlask - Home")
 
 
-@bp.route("/restart", methods=["GET"])
-@bp.route("/restart.html", methods=["GET"])
-@bp.route("/reset", methods=["GET"])
-@bp.route("/reset.html", methods=["GET"])
+@bp.route("/restart", methods=["POST"])
+@bp.route("/restart.html", methods=["POST"])
+@bp.route("/reset", methods=["POST"])
+@bp.route("/reset.html", methods=["POST"])
 def restart():
     [session.pop(key, None)
      for key in list(session.keys())]  # clear the session

hints/static/css/style.css

@@ -36,8 +36,7 @@ body {
     margin-left: 20px;
 }
 
-input{
+input {
     max-width: 500px;
     min-width: 100px;
-}
-
+}

hints/static/js/flags.js

@@ -0,0 +1,7 @@
+document.getElementById("resetButton").addEventListener("click", function(event) {
+    let confirmAction = confirm("Are you sure you want to reset your progress? This action cannot be undone.");
+    
+    if (!confirmAction) {
+        event.preventDefault(); // Prevent form submission if the user cancels
+    }
+});

hints/templates/flags.html

@@ -1,81 +1,90 @@
 {% extends "layout.html" %}
 
 {#<!-- Exports header and navbar from header.html -->#}
-{% block title %}{{ title }}{% endblock %} 
+{% block title %}{{ title }}{% endblock %}
 
 {% block head %}
 {{ super() }}
 
 {% endblock %}
 {% block content %}
-    <div class="container mt-5">
-        <h1 class="text-center">CTFlask</h1>
-        <div class="mt-4">
-            <h3>Stage {{ stage }}</h3>
-            <p>Do not submit anything that comes before the first "{", ie if it is ColaCo{flag}, just submit {flag}</p>
-            <form method="POST">
-                <div class="form-group">
-                    <label for="flag">Enter Flag:</label>
-                    <input type="text" id="flag" name="flag" class="form-control" placeholder="{...}" required>
-                </div>
-                <button type="submit" name="submit_flag" class="btn btn-primary">Submit Flag</button>
-            </form>
+<div class="container mt-5">
+    <h1 class="text-center">CTFlask</h1>
+    <div class="mt-4">
+        <h3>Stage {{ stage }}</h3>
+        <p>Do not submit anything that comes before the first "{", ie if it is ColaCo{flag}, just submit {flag}</p>
+        <form method="POST">
+            <div class="form-group">
+                <label for="flag">Enter Flag:</label>
+                <input type="text" id="flag" name="flag" class="form-control" placeholder="{...}" required>
+            </div>
+            <button type="submit" name="submit_flag" class="btn btn-primary">Submit Flag</button>
+        </form>
 
-            <h5>Notes</h5>
-            {% if notes is defined and notes %}
-                <p>{{ notes }}</p>
-            {% endif %}
+        <h5>Notes</h5>
+        {% if notes is defined and notes %}
+        <p>{{ notes }}</p>
+        {% endif %}
 
-        </div>
-        {% with messages = get_flashed_messages(with_categories=true) %}
-        {% if messages is defined and messages %}
-          <div class="mt-4">
-            {% for category, message in messages %}
-              <div class="alert alert-{{ category }}" >{{ message }}</div>
+    </div>
+    {% with messages = get_flashed_messages(with_categories=true) %}
+    {% if messages is defined and messages %}
+    <div class="mt-4">
+        {% for category, message in messages %}
+        <div class="alert alert-{{ category }}">{{ message }}</div>
+        {% endfor %}
+    </div>
+    {% endif %}
+    {% endwith %}
+    <div class="mt-4">
+        <h4>Hints</h4>
+        {% if hints is defined and hints %}
+        <ul>
+            {% for hint in hints %}
+            <li>{{ hint }}</li>
             {% endfor %}
-          </div>
+        </ul>
+        {% else %}
+        <p>No hints revealed yet.</p>
         {% endif %}
-      {% endwith %}
-        <div class="mt-4">
-            <h4>Hints</h4>
-            {% if hints is defined and hints %}
-                <ul>
-                    {% for hint in hints %}
-                        <li>{{ hint }}</li>
-                    {% endfor %}
-                </ul>
-            {% else %}
-                <p>No hints revealed yet.</p>
-            {% endif %}
-            
-            <form method="POST">
-                <button type="input" name="reveal_hint" class="btn btn-secondary" value="d">Reveal Next Hint</button>
-            </form>
-        
-            {#<!-- comment             {% if hint_index < num_hints-1 %}
+
+        <form method="POST">
+            <button type="input" name="reveal_hint" class="btn btn-secondary" value="d">Reveal Next Hint</button>
+        </form>
+
+        {#<!-- comment             {% if hint_index < num_hints-1 %}
                 -->
-                <form method="POST">
-                    <button type="submit" name="reveal_hint" class="btn btn-secondary">Reveal Next Hint</button>
-                </form>
-            <!-- {% endif %} -->#}
-        </div>
+        <form method="POST">
+            <button type="submit" name="reveal_hint" class="btn btn-secondary">Reveal Next Hint</button>
+        </form>
+        <!-- {% endif %} -->#}
+    </div>
 
-        <div class="mt-4">
-            <h4>Previously Submitted Flags</h4>
-            {% if submitted_flags is defined and submitted_flags %}
-                <ul>
-                    {% for flag in submitted_flags %}
-                        <li>{{ flag }}</li>
-                    {% endfor %}
-                </ul>
-            {% else %}
-                <p>No flags submitted yet.</p>
-            {% endif %}
-        </div>
-        <div class="mt-4">
-            <a href="{{ url_for('ctf.restart') }}" class="btn btn-danger">Restart Challenge</a>
-        </div>
+    <div class="mt-4">
+        <h4>Previously Submitted Flags</h4>
+        {% if submitted_flags is defined and submitted_flags %}
+        <ul>
+            {% for flag in submitted_flags %}
+            <li>{{ flag }}</li>
+            {% endfor %}
+        </ul>
+        {% else %}
+        <p>No flags submitted yet.</p>
+        {% endif %}
+    </div>
+    {#<!-- <div class="mt-4">
+        <p>(danger) You will lose all progress and saved flags on this site: </p>
+        <a href="{{ url_for('ctf.restart') }}" class="btn btn-danger" id="reset">Reset Progress</a>
+    </div> -->#}
+    <div class="mt-4">
+        <form id="resetForm" action="{{ url_for('ctf.restart') }}" method="POST">
+            <button type="submit" id="resetButton" class="btn btn-danger" role="button">Reset Progress</button>
+        </form>
     </div>
 
-    {% endblock %}
+</div>
+
+<script src="{{ url_for('static', filename='js/flags.js') }}"></script>
+
 
+{% endblock %}